Commit graph

9074 commits

Author SHA1 Message Date
Joseph Schorr
c2099c3578 Add memcached install temporarily to the top-level Dockerfile
The quay-base Dockerfile is broken (great...), and so we cannot update it with the memcached dependency
2018-03-02 13:35:57 -05:00
josephschorr
d2069a4bba
Merge pull request #3019 from coreos-inc/mysql-field
Change name field back to a normal string
2018-03-02 13:26:16 -05:00
Joseph Schorr
ff1773bd28 Change name field back to a normal string
Our prod MySQL does not support an index on a UTF8 field of this size; thankfully, we don't need UTF8 here
2018-03-02 13:23:30 -05:00
josephschorr
e992e576b2
Merge pull request #3018 from coreos-inc/missing-default-value
Add missing server_default on enabled col in repositorybuildtrigger
2018-03-02 13:15:32 -05:00
Joseph Schorr
4db4a44491 Add missing server_default on enabled col in repositorybuildtrigger
Without it, we'll default all existing triggers to disabled
2018-03-02 13:13:32 -05:00
josephschorr
dbe4258fc4
Merge pull request #2892 from coreos-inc/joseph.schorr/QS-21/autodisable-triggers
Automatic disabling of failing build triggers
2018-03-02 11:37:38 -05:00
Joseph Schorr
ed84835d23 Changes for code review 2018-03-01 16:49:52 -05:00
Joseph Schorr
3438c1bfad Add new config fields to the schema 2018-03-01 16:49:51 -05:00
Joseph Schorr
de2469ccdc Add warning that triggers will be auto-disabled 2018-03-01 16:49:51 -05:00
Joseph Schorr
3837a7c2ed Add datetime of when a trigger was disabled 2018-03-01 16:49:51 -05:00
Joseph Schorr
93d79e777e Automatically disable build triggers with successive failures or internal errors
We allow users to reenable them manually once disabled
2018-03-01 16:49:51 -05:00
Joseph Schorr
c35eec0615 Add ability for triggers to be disabled
Will be used in the followup commit to automatically disable broken triggers
2018-03-01 16:49:28 -05:00
josephschorr
1e54a4d9e9
Merge pull request #2949 from coreos-inc/joseph.schorr/QS-91/memcached
Switch Quay to using an in-container memcached for data model caching
2018-03-01 16:48:52 -05:00
josephschorr
fd3117f217
Merge pull request #3017 from coreos-inc/superuser-api
Remove internal_only from superuser APIs for users and orgs
2018-03-01 15:25:01 -05:00
Joseph Schorr
4be3594ec8 Remove internal_only from superuser APIs for users and orgs 2018-03-01 15:14:39 -05:00
Joseph Schorr
ab0172d2fd Switch Quay to using an in-container memcached for data model caching 2018-02-27 16:55:22 -05:00
josephschorr
5cecc54bd5
Merge pull request #3014 from coreos-inc/joseph.schorr/QUAY-838/async-delete
Make namespace deletion asynchronous
2018-02-27 14:01:32 -05:00
Joseph Schorr
8bc55a5676 Make namespace deletion asynchronous
Instead of deleting a namespace synchronously as before, we now mark the namespace for deletion, disable it, and rename it. A worker then comes along and deletes the namespace in the background. This results in a *significantly* better user experience, as the namespace deletion operation now "completes" in under a second, where before it could take 10s of minutes at the worse.

Fixes https://jira.coreos.com/browse/QUAY-838
2018-02-27 13:12:51 -05:00
Brad Ison
d9015a1863
Merge pull request #3000 from bison/update-deps
Update dependencies
2018-02-26 14:57:22 -05:00
Brad Ison
6cfa96bdeb Update all dependencies 2018-02-26 13:09:40 -05:00
Brad Ison
d4ee938a5d Fix license test in Dockerfile 2018-02-26 12:56:01 -05:00
Brad Ison
d1ba2dcfc3 Add labels to test cases for invalid JWTs 2018-02-26 12:55:49 -05:00
Brad Ison
5da8744ddf Reject JWTs with future issued-at times
PyJWT stopped doing this in 1.5.0 because it's not part of the spec,
and there are legitimate reasons to issue future tokens.  We still
want to reject these though as we don't have that need.
2018-02-26 12:55:32 -05:00
Brad Ison
f0d6b69729 Pin cnr_server version 2018-02-26 12:55:16 -05:00
Brad Ison
77e894d958 Remove old cnr from requirements-nover.txt 2018-02-26 12:55:01 -05:00
Brad Ison
cb729d0dfd
Merge pull request #3015 from bison/blobupload-byte-count
Make byte_count on BlobUpload table not nullable
2018-02-26 12:33:40 -05:00
Brad Ison
f89a16a64d Make byte_count on BlobUpload table not nullable
The byte_count field on the BlobUpload model is marked as not
nullable, but the migration to make the field a big integer removed
that restriction (#2388 :: 76de324) in the database.  It's still in
the model though, which means they are out of sync.  This adds a
migration to mark the field as not nullable in the database again.
2018-02-26 11:36:56 -05:00
Brad Ison
f458307ffd
Merge pull request #3009 from bison/drop-image-checksum
Drop checksum from ImageStorage table
2018-02-24 17:27:13 -05:00
Brad Ison
5bd826e7b5 Drop checksum from ImageStorage table
The checksum field was removed from the ImageStorage model in #815,
but was never dropped from the database.  This adds a migration to
drop the unused column.
2018-02-24 17:00:07 -05:00
josephschorr
823ce52466
Merge pull request #3013 from coreos-inc/joseph.schorr/QUAY-837/filtered-check
Have cor-checkable-menus reflect the filtered set of items
2018-02-21 16:43:32 -05:00
Joseph Schorr
e857c676db Have cor-checkable-menus reflect the filtered set of items
Fixes https://jira.coreos.com/browse/QUAY-837
2018-02-21 16:38:21 -05:00
josephschorr
6220df4f88
Merge pull request #3012 from coreos-inc/access-control-header
Add X-Requested-With header to allowed CORS headers
2018-02-21 14:27:36 -05:00
josephschorr
f851693095
Merge pull request #3011 from coreos-inc/mysql-queue-tests
Switch build queue limiter query to use total number of alive jobs
2018-02-21 14:21:57 -05:00
Joseph Schorr
bcd9b680fa Add X-Requested-With header to allowed CORS headers
Will fix the API explorer
2018-02-21 14:21:27 -05:00
Joseph Schorr
e446eb5757 Switch build queue limiter query to use total number of alive jobs
This is slightly more accurate and, not being based on time, will work better under MySQL
2018-02-21 14:04:40 -05:00
josephschorr
d77aa9228f
Merge pull request #3002 from coreos-inc/joseph.schorr/QUAY-822/gc-app-tokens
Add a worker to automatically GC expired app specific tokens
2018-02-20 17:21:48 -05:00
josephschorr
7b106d81ef
Merge pull request #3010 from coreos-inc/schema-fix
Fix config schema for bitbucket trigger
2018-02-20 17:01:28 -05:00
Joseph Schorr
4d0ad0074d Fix config schema for bitbucket trigger 2018-02-20 16:59:34 -05:00
josephschorr
3f2604c61e
Merge pull request #3008 from coreos-inc/build-queue-limits
Add configurable limits for number of builds allowed under a namespace
2018-02-20 16:54:37 -05:00
Joseph Schorr
9a452ace11 Add configurable limits for number of builds allowed under a namespace
We also support that limit being increased automatically once a successful billing charge has gone through
2018-02-20 16:54:22 -05:00
Brad Ison
62971b7f20
Merge pull request #2999 from bison/user-location
Add user location metadata filed
2018-02-20 16:48:37 -05:00
josephschorr
4857cd9c48
Merge pull request #2987 from coreos-inc/joseph.schorr/QUAY-805/dot-fix
Add decorator to prevent reflected text attacks
2018-02-20 12:02:22 -05:00
Joseph Schorr
188ea98441 Add new decorator to prevent reflected text attacks
Instead of disabling repo names with periods in them, we simply disallow calls to the API when they are GET requests, whose path ends in a dot, and that do not have a referrer from the frontend.
2018-02-20 11:33:45 -05:00
Joseph Schorr
b342111edb Add registry tests for pushing and pulling previously bad repo names 2018-02-20 11:31:36 -05:00
Evan Cordell
0db304e169
Merge pull request #3007 from ecordell/log-tuf-api-errors
log response data on non-200 responses in TUF API
2018-02-20 10:24:14 -05:00
Evan Cordell
b545cad380 log response data on non-200 responses in TUF API 2018-02-20 09:46:53 -05:00
josephschorr
ac328da383
Merge pull request #3006 from coreos-inc/joseph.schorr/QUAY-827/noop-team-name
Add messaging when trying to create a team that already exists
2018-02-15 16:41:51 -05:00
Joseph Schorr
72ca758c88 Add messaging when trying to create a team that already exists
Fixes https://jira.coreos.com/browse/QUAY-827
2018-02-15 16:03:09 -05:00
josephschorr
7cd2c00d4d
Merge pull request #2967 from coreos-inc/joseph.schorr/QS-111/auth-refactor
Refactor auth code to be cleaner and more extensible
2018-02-15 16:02:22 -05:00
Joseph Schorr
e220b50543 Refactor auth code to be cleaner and more extensible
We move all the auth handling, serialization and deserialization into a new AuthContext interface, and then standardize a registration model for handling of specific auth context types (user, robot, token, etc).
2018-02-14 15:35:27 -05:00